Informacje podstawowe
Third Party Information Security Expert (m/w/d)
Stanowisko: Nieokreślono
Rozpocznij: Jak najszybciej
Zakończ: Nieokreślono
Lokalizajca: Nieokreślono
Metoda współpracy: Tylko projekt
Stawka godzinowa: Nieokreślono
Ostatnia aktualizacja: 16 wrz 2024
Opis zadania i wymagań
We are currently looking for a 3rd Party Information Security Expert (100% remote).
Your tasks include:
+ Create and establish a consistent framework to assess and evaluate the risks associated with Third Parties, especially with critical ICT services provider
+ Perform the risk assessment of existing providers of ICT services and onboard every new ICT services provider into the Risk Management System
+ Establish and operate processes necessary to ensure all ICT services providers are being inventoried, assessed, and managed in alignment to the 3rd Party Risk Management System
Requirements:
Must-have:
+ Minimum of 6 years of experience in Risk Management, specifically 3rd Party Risk Management with a proven track record of success
+ Experience in developing and implementing operational systems within a complex organizational structure.
+ Strong knowledge of industry standards and frameworks, such as ISO 27005 and NIST CSF
+ Experience in conducting risk assessments in the context of an enterprise
+ Familiarity with DORA
+ Strong knowledge of technology systems and infrastructure, with the ability to assess their vulnerabilities and recommend appropriate controls, legal and administrative controls implementations
Nice-have:
+ German
Have we aroused your interest? Then we look forward to receiving your informative expert profile, stating your hourly rate expectations.
Start: 16.09.2024
Duration: 4 Months +
Location: Remote